$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/A4049C06213E11EAAA89A95DC4F9AE02.roa File: A4049C06213E11EAAA89A95DC4F9AE02.roa (raw, json) Hash identifier: QRoywFWHXAug9pKBi9YxGY/9TL/+S30Eoh/rpvCNFc4= Subject key identifier: 08:C7:D4:97:17:16:95:6A:D7:DF:C0:47:BB:20:EF:14:6F:DA:1C:E1 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0C5D Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/A4049C06213E11EAAA89A95DC4F9AE02.roa Signing time: Tue 04 Nov 2025 18:07:08 +0000 ROA not before: Tue 04 Nov 2025 18:07:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136972 IP address blocks: 161.38.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3165 (0xc5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Nov 4 18:07:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690a40cc-cbeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3b:48:72:19:32:dd:eb:a0:8c:78:60:f4:69: 3d:71:0e:fc:60:9b:4a:42:f8:b7:99:ef:4a:d2:6d: 71:3a:25:c9:ab:d7:fb:27:90:ea:fe:6f:69:63:3f: c5:7c:17:cb:65:39:fd:df:f3:55:a2:93:5e:51:88: 0a:d1:3d:58:8c:f8:5f:52:97:19:53:d9:f6:48:28: bb:56:6a:10:36:01:87:b0:5d:04:c7:86:18:16:8c: c5:19:7c:c8:0e:cd:d2:1c:c6:98:51:d0:fd:4e:d4: dc:1f:2b:1f:e4:98:c8:72:c2:e6:55:6d:81:c6:19: 63:aa:7b:de:6c:26:65:c4:a8:84:28:9b:99:ff:9c: d2:fb:dc:54:e7:f8:43:bc:45:88:44:e7:63:9c:3a: 14:85:04:f7:98:8d:e3:1c:37:ec:25:0f:5e:30:6e: dc:21:5f:c3:75:f6:f6:aa:37:77:f6:b3:27:86:01: e4:3c:2a:db:38:5a:d8:79:f5:b9:13:7e:bd:2c:26: a8:fc:49:5a:00:59:ca:e6:39:92:08:bf:d5:92:bc: 5f:f5:92:e6:b2:fd:04:d9:d3:75:1a:29:41:f8:7f: 29:7f:b6:11:27:41:e3:12:69:04:61:dd:9a:39:a5: 17:c3:ec:c4:56:ba:c3:83:4c:35:8e:d2:ef:ca:25: 74:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:C7:D4:97:17:16:95:6A:D7:DF:C0:47:BB:20:EF:14:6F:DA:1C:E1 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/A4049C06213E11EAAA89A95DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.38.216.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:aa:5f:38:76:70:ce:c0:87:97:52:77:02:4a:f3:76:df:4d: 52:3d:a0:6e:71:1b:08:1f:b6:89:88:1e:5f:fe:75:c8:9d:12: e4:a7:93:c8:70:01:1b:31:46:b5:90:b8:f5:79:03:23:9b:66: 4c:d4:03:6d:1f:8e:15:cb:23:ab:0f:7a:42:f2:8d:00:13:ca: 19:69:05:2f:9b:1a:2e:03:4f:b4:8e:f6:f6:71:3b:be:13:7a: 6a:76:c4:9f:6c:6c:c2:42:8b:ef:f3:26:f2:0c:4a:36:44:4d: 66:3f:0d:a2:eb:5c:36:76:20:d8:92:ad:b5:c3:02:e1:ac:64: a7:ea:e4:cc:5b:44:94:5f:87:9d:f8:de:88:cc:7f:b4:6e:c7: 8f:bd:38:2f:e6:e4:95:23:03:5a:73:49:c0:92:af:81:8b:8c: 33:a7:eb:43:79:8b:28:09:38:b3:62:bc:48:d1:1f:63:84:d2: 21:6c:0c:35:6d:e3:29:c1:69:fd:de:d9:98:4d:ae:65:2d:d6: 8b:88:5f:81:43:f5:bd:cc:11:7a:3b:25:17:46:4f:47:27:02: b5:cd:bf:ce:bc:98:56:5b:b1:d8:98:63:f0:5c:4d:aa:ec:24: ff:da:d5:20:f8:05:72:54:28:f8:3e:2a:69:83:8a:3c:9c:53: 24:d5:64:1d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjUxMTA0MTgwNzA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNDBjYy1jYmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTtIchky3eugjHhg9Gk9cQ78YJtKQvi3me9K0m1xOiXJq9f7J5Dq/m9pYz/F fBfLZTn93/NVopNeUYgK0T1YjPhfUpcZU9n2SCi7VmoQNgGHsF0Ex4YYFozFGXzI Ds3SHMaYUdD9TtTcHysf5JjIcsLmVW2BxhljqnvebCZlxKiEKJuZ/5zS+9xU5/hD vEWIROdjnDoUhQT3mI3jHDfsJQ9eMG7cIV/Ddfb2qjd39rMnhgHkPCrbOFrYefW5 E369LCao/ElaAFnK5jmSCL/Vkrxf9ZLmsv0E2dN1GilB+H8pf7YRJ0HjEmkEYd2a OaUXw+zEVrrDg0w1jtLvyiV0AwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAjH1JcX FpVq19/AR7sg7xRv2hzhMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTk2MjQvQzY5NDgyMzYxMEUwMTFFQTlCRDFBNTVEQzRGOUFFMDIvQTQwNDlDMDYy MTNFMTFFQUFBODlBOTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGhJtgwDQYJKoZIhvcNAQELBQADggEBADuqXzh2cM7Ah5dS dwJK83bfTVI9oG5xGwgftomIHl/+dcidEuSnk8hwARsxRrWQuPV5AyObZkzUA20f jhXLI6sPekLyjQATyhlpBS+bGi4DT7SO9vZxO74Temp2xJ9sbMJCi+/zJvIMSjZE TWY/DaLrXDZ2INiSrbXDAuGsZKfq5MxbRJRfh5343ojMf7Rux4+9OC/m5JUjA1pz ScCSr4GLjDOn60N5iygJOLNivEjRH2OE0iFsDDVt4ynBaf3e2ZhNrmUt1ouIX4FD 9b3MEXo7JRdGT0cnArXNv868mFZbsdiYY/BcTarsJP/a1SD4BXJUKPg+KmmDijyc UyTVZB0= -----END CERTIFICATE-----Generated at Wed Nov 5 05:10:45 2025 by rpki-client